Vulnerability Description
A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute commands at the privilege level of a network-admin user outside of the Guest Shell. The attacker must authenticate with valid administrator device credentials. The vulnerability is due to the incorrect implementation of a CLI command that allows a Bash command to be incorrectly invoked on the Guest Shell CLI. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the Guest Shell prompt. A successful exploit could allow the attacker to issue commands that should be restricted by a Guest Shell account.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nx-Os | >= 7.0\(3\)i4, < 7.0\(3\)i4\(9\) |
| Cisco | Nexus 3000 | - |
| Cisco | Nexus 3100 | - |
| Cisco | Nexus 3100-Z | - |
| Cisco | Nexus 3100V | - |
| Cisco | Nexus 3200 | - |
| Cisco | Nexus 3400 | - |
| Cisco | Nexus 3500 | - |
| Cisco | Nexus 3524-X | - |
| Cisco | Nexus 3524-Xl | - |
| Cisco | Nexus 3548-X | - |
| Cisco | Nexus 3548-Xl | - |
| Cisco | Nexus 9000V | - |
| Cisco | Nexus 92160Yc-X | - |
| Cisco | Nexus 92300Yc | - |
| Cisco | Nexus 92304Qc | - |
| Cisco | Nexus 92348Gc-X | - |
| Cisco | Nexus 9236C | - |
| Cisco | Nexus 9272Q | - |
| Cisco | Nexus 93108Tc-Ex | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108397Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/108397Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2019-1730?
CVE-2019-1730 is a vulnerability with a CVSS score of 6.7 (MEDIUM). A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute comma...
How severe is CVE-2019-1730?
CVE-2019-1730 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-1730?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os, Cisco Nexus 3000, Cisco Nexus 3100, Cisco Nexus 3100-Z, Cisco Nexus 3100V.